General
-
Target
7fb37929abd1a8f6b70a42750f54e9f8d0128f916bea6f63f6a9807cda9bb641
-
Size
372KB
-
Sample
220130-3bpetabhhr
-
MD5
01daf523fa72c4ba589a6dc78d0f5536
-
SHA1
f0aded88971ea96ed27ac904022e4652bf7eeb2b
-
SHA256
7fb37929abd1a8f6b70a42750f54e9f8d0128f916bea6f63f6a9807cda9bb641
-
SHA512
fb9200893d6e16ed64db9178e922dbbad71593e763d513b7a284024dbf38940915dee4e883752083bb05ba832e92b63addeaa37a96a05dbd85239d8e79bc14c9
Static task
static1
Malware Config
Extracted
redline
noname
185.215.113.29:20819
Targets
-
-
Target
7fb37929abd1a8f6b70a42750f54e9f8d0128f916bea6f63f6a9807cda9bb641
-
Size
372KB
-
MD5
01daf523fa72c4ba589a6dc78d0f5536
-
SHA1
f0aded88971ea96ed27ac904022e4652bf7eeb2b
-
SHA256
7fb37929abd1a8f6b70a42750f54e9f8d0128f916bea6f63f6a9807cda9bb641
-
SHA512
fb9200893d6e16ed64db9178e922dbbad71593e763d513b7a284024dbf38940915dee4e883752083bb05ba832e92b63addeaa37a96a05dbd85239d8e79bc14c9
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-